Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/mr6TqV6NRIutso67BcoJ9L3QiiY.roa
File: mr6TqV6NRIutso67BcoJ9L3QiiY.roa (raw, json)
Hash identifier: D7f5mzb8dbtzvBAja3W5bZZDG0mpNArXtyPBOZzF6Dw=
Subject key identifier: 9A:BE:93:A9:5E:8D:44:8B:AD:B2:8E:BB:05:CA:09:F4:BD:D0:8A:26
Certificate issuer: /CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Certificate serial: 018677F2A98E73BCE875456084F204A3317D
Authority key identifier: 05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/mr6TqV6NRIutso67BcoJ9L3QiiY.roa
Signing time: Wed 22 Feb 2023 07:07:17 +0000
ROA not before: Wed 22 Feb 2023 07:07:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9123
IP address blocks: 94.198.217.0/24 maxlen: 24
94.198.218.0/24 maxlen: 24
94.198.219.0/24 maxlen: 24
94.198.216.0/24 maxlen: 24
81.200.144.0/24 maxlen: 24
81.200.145.0/24 maxlen: 24
81.200.150.0/24 maxlen: 24
81.200.151.0/24 maxlen: 24
81.200.152.0/24 maxlen: 24
81.200.146.0/24 maxlen: 24
81.200.147.0/24 maxlen: 24
81.200.148.0/24 maxlen: 24
81.200.149.0/24 maxlen: 24
81.200.153.0/24 maxlen: 24
195.80.50.0/24 maxlen: 24
195.80.51.0/24 maxlen: 24
46.19.64.0/24 maxlen: 24
46.19.67.0/24 maxlen: 24
46.19.65.0/24 maxlen: 24
46.19.66.0/24 maxlen: 24
45.8.96.0/24 maxlen: 24
45.8.97.0/24 maxlen: 24
37.220.80.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:77:f2:a9:8e:73:bc:e8:75:45:60:84:f2:04:a3:31:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05b1d13c2e26e12786246a5ec4c5bea69864b20f
Validity
Not Before: Feb 22 07:07:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9abe93a95e8d448badb28ebb05ca09f4bdd08a26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:bd:47:6d:10:ac:57:e3:92:3a:a2:36:91:aa:
ff:94:8a:3a:9c:b1:3e:46:4d:a5:b5:13:b8:42:2f:
d0:65:d6:07:52:5d:a7:6b:69:28:79:b3:56:7e:f1:
e5:3c:bb:f8:0f:5c:16:a3:fe:4d:29:16:ed:fe:52:
aa:53:51:bf:5d:69:6f:62:43:3d:94:66:e2:c6:0c:
01:ac:9e:63:41:86:52:4d:92:d6:79:0f:c7:46:e2:
31:c5:c1:aa:79:d8:ac:c1:6a:1c:67:c0:8a:1b:2d:
51:db:d6:d3:a3:20:ab:19:58:08:6d:f2:68:fc:73:
fb:e9:81:a5:2d:c4:9b:12:b6:58:44:20:0c:c8:87:
c1:ca:07:8f:56:11:eb:37:a7:40:5b:26:9b:a8:37:
a7:cb:f4:18:f8:49:52:24:4e:94:a5:db:c9:24:f3:
a8:13:97:51:00:1c:bd:7b:14:08:4d:7a:09:6f:22:
ca:a4:26:a1:ae:bb:f4:86:66:a3:35:d7:fd:9d:0a:
c6:ef:bc:54:a3:9a:21:e6:fe:f5:6b:3d:d0:83:bd:
40:34:e0:07:79:7c:7c:f9:b9:07:9e:a6:8a:03:74:
05:e6:75:6f:a1:20:6d:1b:fe:9a:ea:b6:c8:b8:40:
d4:a6:f4:2e:64:fd:f7:49:f7:d2:82:94:da:1e:1c:
69:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:BE:93:A9:5E:8D:44:8B:AD:B2:8E:BB:05:CA:09:F4:BD:D0:8A:26
X509v3 Authority Key Identifier:
keyid:05:B1:D1:3C:2E:26:E1:27:86:24:6A:5E:C4:C5:BE:A6:98:64:B2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BbHRPC4m4SeGJGpexMW-pphksg8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/mr6TqV6NRIutso67BcoJ9L3QiiY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/c61092-734a-4eef-9d67-4905243bc828/1/BbHRPC4m4SeGJGpexMW-pphksg8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.220.80.0/24
45.8.96.0/23
46.19.64.0/22
81.200.144.0-81.200.153.255
94.198.216.0/22
195.80.50.0/23
Signature Algorithm: sha256WithRSAEncryption
2d:5c:1a:e1:ea:25:fc:bf:20:b2:07:b7:be:a3:b0:9e:42:db:
1d:86:f6:2f:d7:28:ea:24:1a:76:12:67:2c:68:fe:0e:26:6f:
8d:69:e3:33:5b:d7:5b:c6:6d:32:bc:e2:64:a9:ce:ae:dc:26:
c1:91:9b:2e:3d:65:2c:34:89:02:55:3f:72:22:4d:7c:90:66:
5f:2d:74:19:8e:72:44:65:7d:20:06:b8:09:c2:a1:a7:c0:86:
1c:4d:e0:2a:e0:54:86:30:bb:b1:81:a4:82:1a:27:8d:a6:07:
c9:3d:34:a8:04:49:a8:f2:7e:b0:a2:68:ba:55:d7:0e:02:37:
c0:07:fa:86:4f:4c:70:a6:d0:77:ef:c1:c5:18:b8:61:40:ab:
75:20:98:e2:f1:4a:4f:d3:bb:4d:c7:1a:58:f3:6f:ca:c9:e7:
17:af:f8:44:c4:ed:36:b6:c8:56:cd:76:48:74:60:75:64:14:
3e:34:8c:bd:75:2d:82:40:e6:5b:4a:15:79:63:3d:63:9a:c0:
6a:c3:8e:06:e9:7a:fb:cd:82:ff:3e:c4:48:a3:05:ae:e4:d6:
30:c9:e2:6b:38:41:b5:81:5e:41:ee:36:dc:75:66:be:80:a1:
ec:6f:48:85:5e:de:c7:3e:6a:a4:a5:1c:b1:73:77:87:cf:dd:
5c:42:c4:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:47 2023 by rpki-client on console-ams.rpki-client.org